I don't think this should be considered a security leak, since this is true only for the studio configuration (which has both the web and models folders accessible by default).
In the server, no folder is accessible unless you explictly specify it in the local_web_directories parameter of the application context file.
Regards,
David
To use the full functionality of this web site, JavaScript needs to be turned on.
For best results, use the Firefox browser..
Copyright © 2003-2017 - Tersus Software Ltd., All rights reserved. Terms of Use License Graphic design by EmaraDesign